Video Screencast Help

Endpoint Encryption password recover

Created: 30 Mar 2011 | 3 comments
john.ts's picture


is there any way to recover/reset/change or "see" the Encryption password on the endpoint manager ?

If not is there any other alternative except from reinstalling the SEPM ?

PS. no the customer didnt write it down when the SEPM installation was done.

Comments 3 CommentsJump to latest comment

w-d's picture

Unfortunately encrypted password cannot be changed/recovered.

I doubt there is any supported way except reinstallation

w-d's picture

Have a look on that document:

The Encryption Password and Symantec Endpoint Protection 11 (SEP11)

(...) If, during the configuration portion of the SEPM, the "Simple" configuration option is chosen, then the encryption password should be the same as the admin login for the console (see page 66 of the install guide). Please note, however, that resetting the admin login does not reset the encryption password.(...)

Chetan Savade's picture


To recover encryption password follow the steps

Click Start > Run and type "odbcad32"

Data required in ODBC

Username should be "DBA"
Password should be the first password that you used to login to SEPM.
Server name should be the name of the server.
Database name should be  "sem5"

If you dont remember the password follow the following steps to get the password

  •  Remove all the details from ODBC and change the name for the database from sem5 to SEM
  • Go to C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Php\
  • Go to php.ini properties, and uncheck the read-only option
  • Open php.ini using a notepad
  • Modify the following lines to read:

             display_errors = On
             display_startup_errors = On

Fatal error: Uncaught exception 'com_exception' with message '<b>Source:</b> ASAProv.90<br/><b>Description:</b> Request to start/stop database denied' in C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Inetpub\Reporting\Common\ado.php:40 Stack trace: #0 C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Inetpub\Reporting\Common\ado.php(40): com->Open('Provider=ASAPro...', 'DBA', 'password') #1 C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Inetpub\Reporting\Common\connectdb.php(46): ado_connect(Object(com), 'SymantecEndpoin...', 'DBA', 'password', NULL, NULL) #2 C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Inetpub\Reporting\Login\curl_funcs.php(360): connectnav(Object(com)) #3 C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Inetpub\Reporting\Login\curl_funcs.php(98): doProcessLoginResponse('admin', '<?xml version="...', '<?xml version="...', 0) #4 C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Inetpub\Reporting\Login\Login_verify.php(2 in C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Inetpub\Reporting\Common\ado.php on line 40

Note: The password next to DBA which is bold in the above example is the password for ODBC

  • Open php.ini using a notepad
  • Again Modify the following lines to read:

             display_errors = Off
             display_startup_errors = Off

  • Go to ODBC and change the name of the database to SEM5
  • Go to C:\Program Files\Symantec\Symantec Endpoint Protection Manager\Php\php.ini properties, and check read-only

Then try the ODBC with the password and the connection should be successful.

Chetan Savade
Sr.Technical Support Engineer, Endpoint Security
Enterprise Technical Support

Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<